CRITICAL
Simopro Technology
CVE published 2026-04-16
CVE-2026-6348
CVE-2026-6348 documents a Missing Authentication vulnerability in the WinMatrix agent developed by Simopro Technology. The vulnerability permits authenticated local attackers to execute arbitrary code with SYSTEM privileges on the local machine and on all hosts where the agent is installed within the environment. The CVSS 4.0 vector indicates local attack vector with low attack complexity, no required use [truncated]